KLx

KLx is the Portuguese subsidiary of the Crédit Agricole Group that provides IT Skills & Software Development services to the IT organizations within the group's business lines. Founded in February 2020, our mission is to assist in the digital transformation and IT activities of the Crédit Agricole Group, leveraging all the skills of our international campus in Lisbon.
About company

Devsecops engineer (wealth management)

Remote

location Lisbon

date June 20, 2026

types Full-time

Apply here apply View all jobs

DevSecOps Engineer (Wealth Management)

KLx is the Portuguese subsidiary of Crédit Agricole S.A., a major international banking group delivering IT Skills & Software Development services to the group’s global business lines. Our mission is to support the IT transformation of a worldwide bank, leveraging the expertise of our international campus in Lisbon.

About the Wealth Management Team

Our Wealth Management unit delivers secure, compliant, and scalable digital solutions for private banking institutions.

  • Core banking platforms and operational excellence
  • Portfolio management, investment services, and regulatory reporting
  • Client lifecycle management (KYC, onboarding, compliance)
  • Digital channels for advisors and clients
  • Cloud transformation aligned with banking‑grade security and regulatory standards

Responsibilities

As a DevSecOps Engineer, you will help secure and operate our Azure cloud environments.

  • Define cloud security guidelines for Azure services and landing zones
  • Automate deployments using Terraform/Terragrunt modules
  • Design and implement cloud security controls to protect environments from threats
  • Monitor environments, perform vulnerability assessments, and support incident response
  • Ensure cloud migrations follow internal security policies and industry standards
  • Optimize configurations for availability, performance, and scalability
  • Conduct technology watch and evaluate new solutions
  • Document cloud migration processes and share knowledge with teams
  • Provide technical support and best practices for new cloud environments

Who You Are

  • 5+ years in IT, including experience securing Azure environments
  • Hands-on experience with Terraform, Terragrunt, Ansible, and CI/CD (GitLab or Azure DevOps)
  • Knowledge of Entra ID, Microsoft Defender, IAM/RBAC, and managed identities
  • Familiarity with Azure Policies, CSPM, image scanning, or container threat detection
  • Understanding of application security in cloud environments
  • Exposure to network microsegmentation (NSX, tag‑based rules)
  • Awareness of CIS hardening and Microsoft CAF
  • Experience contributing to cloud architecture or security design is a plus
  • Cloud certifications (Microsoft preferred) are appreciated but not required
  • Fluent in English, proficiency in French is a real plus.

Mindset & Behaviors

  • Strong problem‑solving skills
  • Curiosity, continuous learning, and adaptability
  • Ability to collaborate in a multi‑team environment
  • Solution‑oriented and proactive approach

What We Offer

  • Competitive Salary + Bonuses + Flex Benefits + Health Insurance
  • Hybrid working model (onsite + offsite)
  • Modern open‑space office next to the Tagus River, 5 minutes from Metro/Train, 15 minutes from the airport
  • Canteen (Breakfast + Lunch)
  • Parking upon request (including EV charging)
  • Free coffee, hot chocolate, fruit
  • Training opportunities (Hard & Soft Skills)
  • International environment with 15+ nationalities
  • A people‑oriented, friendly, and collaborative workplace
hashtag Tags
DevOps